Skip to content

Releases: trendmicro/cloudone-container-security-helm

2.4.3

13 Nov 15:51
Compare
Choose a tag to compare

Changelog

[2.4.3] - 2024-11-13

Features

  • Add trusted images evaluation in admission controller
  • Add trusted images evaluation in oversight controller
  • Add malware scanning feature

Bug Fixes

  • Fixed issue where scan-controller and admission-controller crashed
  • Fixed issue where scout sent runtime security event whose pod ID was
  • Fixed missing option on Fargate instance
  • Fixed issue syncing custom rulesets without labels

Upgrade instructions

To upgrade, use the following command:

helm upgrade \
  --values overrides.yaml \
  --namespace trendmicro-system \
  trendmicro \
  https://github.com/trendmicro/cloudone-container-security-helm/archive/2.4.3.tar.gz

2.4.2

23 Oct 20:26
Compare
Choose a tag to compare

Changelog

[2.4.2] - 2024-10-23

Features

  • CIS Compliance Scan for OpenShift Added support for CIS compliance scans on Red Hat OpenShift
  • Log Enhancement: Added support for logging configuration and Falco output channel toggles in helm overrides

Bug Fixes

  • Reduced image size and updated dependencies in container images

Upgrade instructions

To upgrade, use the following command:

helm upgrade \
  --values overrides.yaml \
  --namespace trendmicro-system \
  trendmicro \
  https://github.com/trendmicro/cloudone-container-security-helm/archive/2.4.2.tar.gz

2.4.1

10 Oct 18:19
Compare
Choose a tag to compare

Changelog

[2.4.1] - 2024-10-10

Features

  • Policy Management: Introduced "Policy as Code" for managing container security policy resources with Policy Operator. Learn more
  • Runtime Support: Added support for kernels without raw tracepoint

Bug Fixes

  • Resolved issue with helm template defaults for boolean values
  • Reduced log size for oversight controller

Full Changelog: 2.4.0...2.4.1

Upgrade instructions

To upgrade, use the following command:

helm upgrade \
  --values overrides.yaml \
  --namespace trendmicro-system \
  trendmicro \
  https://github.com/trendmicro/cloudone-container-security-helm/archive/2.4.1.tar.gz

2.4.0

25 Sep 17:52
Compare
Choose a tag to compare

Changelog

[2.4.0] - 2024-09-25

Features

  • Runtime Security - Upgrade Falco to 0.37.1
  • Add appArmourProfile support in scout for k8s 1.30+
  • Support NOPROXY configuration in values
  • Update go version to 1.23.1

Bug Fixes

  • Fix logger error in workload operator

Full Changelog: 2.3.47...2.4.0

Upgrade instructions

Sample upgrade command:

helm upgrade \
  --values overrides.yaml \
  --namespace trendmicro-system \
  trendmicro \
  https://github.com/trendmicro/cloudone-container-security-helm/archive/2.4.0.tar.gz

2.3.47

10 Sep 18:03
Compare
Choose a tag to compare

Changelog

  • Add CIS compliance scan feature for k8s clusters for Trend Vision One Container Security customers
  • Patch vulnerability in runtime scanner

Upgrade instructions

Sample upgrade command:

helm upgrade \
  --values overrides.yaml \
  --namespace trendmicro-system \
  trendmicro \
  https://github.com/trendmicro/cloudone-container-security-helm/archive/2.3.47.tar.gz

2.3.46

05 Sep 18:17
Compare
Choose a tag to compare

Changelog

  • Shorten inventory full sync period

Upgrade instructions

Sample upgrade command:

helm upgrade \
  --values overrides.yaml \
  --namespace trendmicro-system \
  trendmicro \
  https://github.com/trendmicro/cloudone-container-security-helm/archive/2.3.46.tar.gz

2.3.45

21 Aug 16:08
Compare
Choose a tag to compare

Changelog

  • Fix Falco event missing issue when host pid is true
  • Enhance scout error handling
  • Upgrade open source tool version
  • Fix OpenShift helm uninstall error, allow creation of scan-job in privileged namespace

Upgrade instructions

Sample upgrade command:

helm upgrade \
  --values overrides.yaml \
  --namespace trendmicro-system \
  trendmicro \
  [https://github.com/trendmicro/cloudone-container-security-helm/archive/${RELEASE}.tar.gz](https://github.com/trendmicro/cloudone-container-security-helm/archive/$%7BRELEASE%7D.tar.gz)

2.3.44

06 Aug 13:54
Compare
Choose a tag to compare

Changelog

  • Fixed the issue where scan-controller crashed when scan-job was deleted
  • Fixed the issue where excluding the namespace does not work as expected in fargate environment
  • Added excluded namespace and trusted images to inventory snapshot
  • Fixed the issue where k8s-metacollector crashed
  • Used chart appVersion as application version in components
  • Upgraded dependencies

Upgrade instructions

Sample upgrade command:

helm upgrade \
  --values overrides.yaml \
  --namespace trendmicro-system \
  trendmicro \
  https://github.com/trendmicro/cloudone-container-security-helm/archive/2.3.44.tar.gz

2.3.43

15 Jul 20:10
Compare
Choose a tag to compare

Changelog

  • Fix error marshalling event due to invalid UTF-8 characters in falco
  • Fix workload-operator crash on pod update due to index out of range
  • Fix helm upgrade errors when using the set option for values

Upgrade instructions

Sample upgrade command:

helm upgrade \
  --values overrides.yaml \
  --namespace trendmicro-system \
  trendmicro \
  https://github.com/trendmicro/cloudone-container-security-helm/archive/2.3.43.tar.gz

2.3.42

08 Jul 21:07
Compare
Choose a tag to compare

Changelog

  • Fixed scan-job permission denied error on generating SBOM from directories with creator only permission.

Upgrade instructions

Sample upgrade command:

helm upgrade \
  --values overrides.yaml \
  --namespace trendmicro-system \
  trendmicro \
  https://github.com/trendmicro/cloudone-container-security-helm/archive/2.3.42.tar.gz